[Linux-ima-devel] [PATCH 12/12] ima: added Documentation/security/IMA-digest-lists.txt
Roberto Sassu
roberto.sassu at huawei.com
Wed Dec 6 09:22:52 UTC 2017
On 12/5/2017 11:28 PM, Ken Goldman wrote:
> On 7/25/2017 11:44 AM, Roberto Sassu wrote:
>> +==== FORMAT ====
>> +
>> +The format of digest list metadata is:
>> +
>> +algo[2] digest_len[4] digest[digest_len]
>> + signature_len[4] signature[signature_len]
>> + path_len[4] path[path_len]
>> + ref_id_len[4] ref_id[ref_id_len]
>> + list_type_len[4] list_type[list_type_len]
>> +
>
> It's not obvious how this would handle the TPM 2.0 case where there are
> multiple PCR banks with different hash algorithms
'algo[2]' is the identifier of the algorithm used to calculate file
digests. PCR banks are extended with digests of measurement entries.
Roberto
> --
> To unsubscribe from this list: send the line "unsubscribe
> linux-security-module" in
> the body of a message to majordomo at vger.kernel.org
> More majordomo info at http://vger.kernel.org/majordomo-info.html
--
HUAWEI TECHNOLOGIES Duesseldorf GmbH, HRB 56063
Managing Director: Bo PENG, Qiuen PENG, Shengli WANG
--
To unsubscribe from this list: send the line "unsubscribe linux-security-module" in
the body of a message to majordomo at vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
More information about the Linux-security-module-archive
mailing list